Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/27BBCC48915F11ED9305D966C4F9AE02.roa
File: 27BBCC48915F11ED9305D966C4F9AE02.roa (raw, json)
Hash identifier: l5lFepKDZf6HTEfUYDKqceChdFP3fppTEKOhyH1d1KI=
Subject key identifier: B9:E8:1A:B2:5E:76:36:D2:C9:CA:84:25:B9:6D:67:65:93:19:D3:FF
Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8
Certificate serial: 032B
Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/27BBCC48915F11ED9305D966C4F9AE02.roa
Signing time: Wed 11 Jan 2023 03:22:19 +0000
ROA not before: Wed 11 Jan 2023 03:22:19 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 14618
IP address blocks: 103.173.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 811 (0x32b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8
Validity
Not Before: Jan 11 03:22:19 2023 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=63be2b6b-4ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:29:7a:ad:b0:5e:4a:5f:dc:a4:6a:3b:ed:5a:
c5:bb:71:c2:1a:dd:39:c8:b0:37:ef:58:02:c9:23:
79:f3:c0:40:3c:86:87:3e:f2:59:30:6d:4c:14:d6:
1c:77:f3:82:1f:9d:e9:30:59:00:1c:58:dc:59:8c:
e3:f1:71:34:85:6c:06:5f:15:be:4b:45:e9:2d:ec:
5d:f7:cf:d1:09:53:5d:52:19:17:a1:34:5b:22:cd:
3a:64:db:79:53:b6:20:88:7f:73:81:03:5b:fb:3d:
d2:fe:59:73:aa:ce:61:fb:7a:ad:0f:0a:eb:c4:8a:
b9:cd:d6:cc:0c:ce:58:d4:62:9e:85:0f:f8:9c:14:
64:0b:64:1d:8c:26:43:00:88:57:2d:95:87:e8:cf:
3c:73:b2:11:62:9a:db:49:19:6f:e4:c8:d2:1c:58:
16:0c:a3:cd:78:da:dd:93:db:ce:d9:93:9d:d6:70:
3f:7f:8e:83:1d:ba:52:c6:e9:d3:64:dc:bd:d3:fb:
35:0d:ac:e3:db:c7:26:45:f5:a4:a1:36:4f:4a:ff:
e7:70:a0:43:4c:8d:e9:c0:09:9d:10:41:61:67:8b:
a0:ea:0b:49:14:da:ba:d9:6a:dd:4a:6d:3c:e3:02:
e0:bb:49:cd:d4:70:2e:11:41:6d:23:61:03:4c:16:
ee:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E8:1A:B2:5E:76:36:D2:C9:CA:84:25:B9:6D:67:65:93:19:D3:FF
X509v3 Authority Key Identifier:
keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/27BBCC48915F11ED9305D966C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.84.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:4a:fa:81:ca:64:c5:c9:c3:ef:50:17:64:e7:c8:8e:47:1a:
47:6e:cd:63:b0:a5:1d:3a:53:43:a8:70:eb:10:1d:c0:43:9e:
96:3d:23:0e:26:cc:fc:63:16:b8:be:3f:35:9a:16:db:22:e4:
d8:9f:3d:0a:22:f6:0d:45:c7:51:a2:97:ad:4b:0d:01:8e:73:
0b:25:5b:48:d8:16:9c:52:cd:66:95:a6:cb:e3:7e:cb:c3:46:
22:fa:48:fa:95:4e:4f:5f:71:d6:47:96:98:b0:27:dd:a3:d9:
37:68:79:95:60:50:bb:b3:b0:f2:e7:33:ad:47:03:06:74:04:
6a:4a:9c:ff:a5:35:17:dd:15:54:7d:f7:c6:bc:32:c5:1e:f4:
8b:25:3a:da:b2:9d:08:0c:42:6c:94:ed:f0:e7:72:ce:be:2e:
b9:0e:09:4a:c4:aa:68:6e:32:69:ac:87:67:e7:15:de:b2:8e:
a5:dd:cd:bb:65:9a:fe:71:de:13:9a:48:04:03:bf:ab:fc:bb:
ff:83:d5:09:d7:6b:1c:45:c8:a7:0a:45:cd:07:bb:73:47:e3:
fc:23:93:93:33:51:f4:5c:42:0a:2f:c3:10:4b:b2:72:29:e6:
de:a5:01:15:2c:bd:db:af:32:96:8c:98:c1:9e:c6:af:96:da:
82:04:e0:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:44 2024 by rpki-client on console-fra.rpki-client.org